Enhancement: Log the IP along with "invalid password or cipher" - Githubissues

shadowsocks / shadowsocks-libev

Bug-fix-only libev port of shadowsocks. Future development moved to shadowsocks-rust

https://github.com/shadowsocks/shadowsocks-rust

GNU General Public License v3.0

15.81k stars 5.69k forks source link

Enhancement: Log the IP along with "invalid password or cipher" #1393

Closed shounak-de closed 7 years ago

shounak-de commented 7 years ago

Please log the source IP with every log message, for all connect attempts, either successful or failed. It will help harvest potential attackers/abusers IP from the syslog

What version of shadowsocks-libev are you using?

shadowsocks-libev 2.4.5

What operating system are you using?

Linux RT-AC66R-D700 2.6.22.19 #1 Fri Feb 3 00:20:05 EST 2017 mips ASUSWRT-Merlin

What did you do?

N/A

What did you expect to see?

N/A

What did you see instead?

N/A

What is your config in detail (with all sensitive info masked)?

{
    "server"       : "0.0.0.0",
    "server_port"  : 8388,
    "password"     : "xxxxxxxx",
    "timeout"      : 300,
    "method"       : "aes-256-cfb",
    "fast_open"    : false,
    "dns"          : "192.168.1.1",
    "workers"      : 1
}

madeye commented 7 years ago

Try the latest version. Every suspect IP is already being logged.